I can not get Role Scoper to restrict file downloads. I have enabled 'Filter Uploaded File Attachments' and run the Attachments Utility. I attached and inserted a file into a post. I then restricted the post to a certain group. My test user can not view the post, which is correct. However, if that user enters the direct path to the file, they can view the file.
- Shouldn't Role Scoper prevent that?
- Did I miss a setting?
- Is my htaccess file supposed to have been altered (it hasn't been)